CVE-2026-23302

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: annotate data-races around sk->sk_{data_ready,write_space}

skmsg (and probably other layers) are changing these pointers while other cpus might read them concurrently.

Add corresponding READ_ONCE()/WRITE_ONCE() annotations for UDP, TCP and AF_UNIX.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux604326b41a6fb9b4a78b6179335decee0365cd8c < 279f2b67d1c44ee139bd3fdb221850daa9358449affected
LinuxLinux604326b41a6fb9b4a78b6179335decee0365cd8c < 7ad01905831c815520f1b0486336a03bb7420465affected
LinuxLinux604326b41a6fb9b4a78b6179335decee0365cd8c < c494448bb522bbbb63096540eb2319101a0480abaffected
LinuxLinux604326b41a6fb9b4a78b6179335decee0365cd8c < f17c1c4acbe2bd702abce73a847a04a196fab2c5affected
LinuxLinux604326b41a6fb9b4a78b6179335decee0365cd8c < 27fccdbcbbfc4651b6f66756e6fa3f52e051ec23affected
LinuxLinux604326b41a6fb9b4a78b6179335decee0365cd8c < 2ef2b20cf4e04ac8a6ba68493f8780776ff84300affected
LinuxLinux4.20affected
LinuxLinux0 < 4.20unaffected
LinuxLinux6.1.177 <= 6.1.*unaffected
LinuxLinux6.6.136 <= 6.6.*unaffected
LinuxLinux6.12.82 <= 6.12.*unaffected
LinuxLinux6.18.17 <= 6.18.*unaffected
LinuxLinux6.19.7 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References